Fix ‘ssl_error_weak_server_ephemeral_dh_key’ error

Madalina Dinita
by Madalina Dinita
Former Managing Editor
Affiliate Disclosure
Share this article:

could not be saved because the source file
To fix various PC problems, we recommend DriverFix: This software will keep your drivers up and running, thus keeping you safe from common computer errors and hardware failure. Check all your drivers now in 3 easy steps:
  1. Download DriverFix (verified download file).
  2. Click Start Scan to find all problematic drivers.
  3. Click Update Drivers to get new versions and avoid system malfunctionings.
  • DriverFix has been downloaded by 0 readers this month.

ssl_error_weak_server_ephemeral_dh_key is one of those errors on Firefox browser that can tantalise you. The Error message doesn’t come with a specific solution and it’s mostly a combination of troubleshooting steps that can cure this error. As with all the other Firefox errors, we need to spare some time and understand why the error message is displayed in the first place.


The ssl_error_weak_server_ephemeral_dh_key error message may be displayed due to the following reasons,

  • The website you are trying to access may be vulnerable to certain attacks.
  • Certain websites secure their servers and in order to access these websites, you need to have secured server certificates.
  • If you are using Tomcat server it is most likely that you have no secure server certificate and thus the error message.

Basic Checks

As per some of the users on the Firefox forums, the error message is also displayed due to old driver in your browser and updating the same will get rid of the issue. In order to update the driver

  • Access “Open menu” and then click on “Add-ons”
  • Update the drivers if found necessary

Some of the Firefox users have claimed that Refreshing the browser will resolve the issue. In order to refresh Firefox follow the steps below

  • Select “Open menu” from your Mozilla Firefox browser and then click on “Help menu.”
  • Now select “Troubleshooting Information” from the Menu
  • Click on “Refresh Firefox”

Solution-1- Set Firefox to Ignore the SSL Error

Well, this might not exactly be the safest thing to do but most of the folks back in the forum have reported that this methodology works. For this, to work you need to toggle two security codes in the Mozilla Firefox browser to false.

  • After opening the Mozilla Firefox browser click on the Firefox icon
  • In the search bar type “about:config”
  • The browser will show a warning message that says, “This might void your warranty” ignore it and click on “I’ll be careful, I promise!”
  • A new page will open and now you need to type “security.ssl3.dhe_rsa_aes_128_sha”
  • Check the Value tab, if it’s True, toggle it to False.
  • In the next step enter the following value in the search bar “security.ssl3.dhe_rsa_aes_256_sha”

Problems with Firefox Server Not Found Error? Check this out: How to fix ‘Server not Found’ error in Firefox browser

Resolving the ssl_error_weak_server_ephemeral_dh_key by Disabling SSL 2.0 in Tomcat Server

Its quiet possible that the Tomcat server might be enabled by default especially if you are using SSL 2.0. In this case just disable the SSL 2.0. Tomcat has weak ciphers enabled by default and these need to be disabled. Now open the server.xml file and enter add the code given below,

<connector port="443" maxhttpheadersize="8192" address=""

enablelookups="false" disableuploadtimeout="true" acceptCount="100" scheme="https" secure="true" clientAuth="false" SSLEnabled="true" sslEnabledProtocols="TLSv1,TLSv1.1,TLSv1.2" ciphers="TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256, TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA,TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384, TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA,TLS_ECDHE_RSA_WITH_RC4_128_SHA, TLS_RSA_WITH_AES_128_CBC_SHA256,TLS_RSA_WITH_AES_128_CBC_SHA,TLS_RSA_WITH_AES_256_CBC_SHA256, TLS_RSA_WITH_AES_256_CBC_SHA,SSL_RSA_WITH_RC4_128_SHA" keystoreFile="mydomain.key" keystorePass="password" truststoreFile="mytruststore.truststore" truststorePass=“password"/>;

Considering that you have promptly followed the steps described above the Firefox should stop throwing the ephemeral message. Also your webppages should load faster than before.

This article covers:
add a comment

Leave a Reply

Your email address will not be published. Required fields are marked *